CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-50741

Malicious code in bioql PyPI...

6.1CVSS8.9AI score0.02577EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-44632

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/07/16 11:28 a.m.•2 views

CVE-2025-28982 WordPress WP Pipes plugin <= 1.4.3 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ThimPress WP Pipes allows SQL Injection. This issue affects WP Pipes: from n/a through 1.4.3...

9.3CVSS7.1AI score0.00241EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:26 a.m.•6 views

CVE-2024-12283

The WP Pipes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘x1’ parameter in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

6.1CVSS6.4AI score0.02577EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:43 a.m.•5 views

CVE-2023-40009

Cross-Site Request Forgery CSRF vulnerability in ThimPress WP Pipes plugin = 1.4.0 versions...

6.5CVSS7.1AI score0.00047EPSS

Exploits0

NVD•added 2024/12/11 9:15 a.m.•12 views

CVE-2024-12283

6.1CVSS0.02577EPSS

Exploits0References3

CVE•added 2024/12/11 8:57 a.m.•51 views

CVE-2024-12283

CVE-2024-12283 refers to the WP Pipes plugin for WordPress. It allows a Reflected Cross-Site Scripting (XSS) via the x1 parameter in all versions up to and including 1.4.1 due to insufficient input sanitization and output escaping. The vulnerability is exploitable by unauthenticated attackers who...

6.1CVSS6.4AI score0.02577EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/12/11 8:57 a.m.•11 views

CVE-2024-12283 WP Pipes <= 1.4.1 - Reflected Cross-Site Scripting via x1 Parameter

6.1CVSS0.02577EPSS

Exploits0References3

OSV•added 2023/10/03 1:15 p.m.•0 views

CVE-2023-40009

Cross-Site Request Forgery CSRF vulnerability in ThimPress WP Pipes plugin = 1.4.0 versions...

6.5CVSS5.8AI score

Exploits0References1

CVE•added 2023/10/03 12:45 p.m.•50 views

CVE-2023-40009

The CVE-2023-40009 entry concerns the WordPress WP Pipes plugin (

6.5CVSS6AI score0.00047EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/03 12:45 p.m.•11 views

CVE-2023-40009 WordPress WP Pipes Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in ThimPress WP Pipes plugin = 1.4.0 versions...

5.4CVSS6.8AI score0.00047EPSS

Exploits0References1

Patchstack•added 2023/09/04 12:0 a.m.•10 views

WordPress WP Pipes Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Pipes Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.4.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-40009 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID a9072585c12c Credits Nguyen Xuan Chien Required...

6.5CVSS6.6AI score0.00047EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by